7763 Commits

Author	SHA1	Message	Date
Aleksander Machniak	ef7c00ac2d	Makefile: Backports and fix version number	2023-09-18 10:26:49 +02:00
Aleksander Machniak	fe42e143ca	Fix cross-site scripting (XSS) vulnerability in handling of linkrefs in plain text messages ... Thanks to Niraj Shivtarkar for the report.	2023-09-14 10:11:34 +02:00
Aleksander Machniak	401eae025d	Fix PHP8 warning	2023-07-28 14:03:42 +02:00
Aleksander Machniak	5d5da0364d	Fix PHP8 warning	2023-07-28 12:51:08 +02:00
Aleksander Machniak	e14755646d	Fix PHP8 warning (#9071)	2023-07-28 12:19:26 +02:00
Aleksander Machniak	0e4caf123a	Fix PHP 8.2 fatal error when imap_conn_options.proxy_protocol is not an array	2023-07-20 13:18:03 +02:00
Aleksander Machniak	fd42f1c214	Add rcube_db::error_info()	2023-07-20 10:30:07 +02:00
Aleksander Machniak	5a44e539fd	Fix PHP7 compat. break in last commit	2023-06-14 13:05:08 +02:00
Aleksander Machniak	56a1d651f0	Fix so output of log_date_format with microseconds contains time in server time zone, not UTC	2023-06-14 13:04:55 +02:00
Aleksander Machniak	feb75c042b	Fix PHP8 warnings	2023-06-12 12:13:25 +02:00
Aleksander Machniak	494045c8d4	Fix compat. with PHP5	2023-06-06 14:59:04 +02:00
Aleksander Machniak	5e2c85c9a1	Fix PHP8 warnings	2023-06-06 14:52:28 +02:00
Aleksander Machniak	e3637ea26c	Fix PHP8 warnings	2023-06-06 13:00:10 +02:00
Aleksander Machniak	a30206bf6a	Fix bug where a non-ASCII character in app.js could cause error in javascript engine (#8894)	2023-01-28 18:34:51 +01:00
Aleksander Machniak	6dc41a2c96	Make rcmail::format_date() to work with DateTimeImmutable	2023-01-18 11:47:39 +01:00
Aleksander Machniak	c0f183059c	Fix get_address_book() issue for addressbooks that have a string identifier starting with a digit	2022-12-01 10:02:20 +01:00
Michael Steininger	278633b150	Fix php 8.0 warning if db_dsnr is used (#8779)	2022-11-11 11:39:09 +01:00
Aleksander Machniak	6e4d328841	Fix return to previous contact source/group after search reset	2022-11-11 11:23:58 +01:00
Aleksander Machniak	6abd913566	Fix so N property always exists in a vCard export (#8771)	2022-11-02 11:55:17 +01:00
Thomas Bruederli	88c1566126	Prepare release 1.5.3	2022-06-22 10:28:04 +02:00
Aleksander Machniak	9822616191	Fix support for DSN specification without host e.g. pgsql:///dbname (#8558)	2022-06-18 14:13:16 +02:00
Aleksander Machniak	62d0287e61	Fix bug where title tag content was displayed in the body if it contained HTML tags (#8540)	2022-05-28 09:13:47 +02:00
Aleksander Machniak	22066d8ffc	Fix broken encoding of HTML content encapsulated in a RTF attachment (#8444)	2022-04-17 09:22:55 +02:00
Aleksander Machniak	1b4f364430	Fix bug where DSN flag state wasn't stored with a draft (#8371)	2022-04-10 11:34:40 +02:00
Aleksander Machniak	96e9427616	Fix bug where session could time out if DB and PHP timezone were different (#8303)	2022-03-13 11:42:04 +01:00
Aleksander Machniak	35160841ba	Fix PHP8 warning (#8466)	2022-03-12 09:39:45 +01:00
Aleksander Machniak	d760749ca3	Fix handling of message/rfc822 parts that are small and are multipart structures with a single part (#8458)	2022-03-08 19:55:54 +01:00
Arkadiusz Miśkiewicz	617f329304	Fix regression in showing attachments (#8425). (#8430) ... a5c2b4360c started initializing $this->got_html_part always but this check wasn't updated.	2022-01-31 18:13:25 +01:00
Aleksander Machniak	b66bbf2902	Fix setting HTML mode on reply/forward of a signed message (#8405) ... Simplify and unify has_html_part() and has_text_part() methods.	2022-01-30 09:21:28 +01:00
Aleksander Machniak	5bcb76298e	Fix setting HTML mode on reply/forward of a signed message (#8405)	2022-01-30 09:21:13 +01:00
Aleksander Machniak	c33541b03a	Fix handling of RFC2231-encoded attachment names inside of a message/rfc822 part (#8418)	2022-01-29 10:18:02 +01:00
Aleksander Machniak	4ea9b1b58f	Fix a couple of PHP8 warnings (#8420)	2022-01-29 08:37:35 +01:00
Aleksander Machniak	fbc424546d	Fix bug where small message/rfc822 parts could not be decoded (#8408)	2022-01-22 09:44:42 +01:00
Aleksander Machniak	6d5c41e242	Fix mail headers injection via the subject field on mail compose (#8404)	2022-01-22 08:28:47 +01:00
Aleksander Machniak	243312c50f	Fix various PHP8 warnings (#8392)	2022-01-11 19:06:24 +01:00
Aleksander Machniak	ee88d02cc1	Fix PHP Warning: Undefined array key "value" on PHP8 (#8382)	2022-01-08 08:33:23 +01:00
Aleksander Machniak	8894fddd59	Security: Fix cross-site scripting (XSS) via HTML messages with malicious CSS content	2021-12-29 19:03:16 +01:00
Thomas Bruederli	ddd67891e4	Bump version to 1.5.2	2021-12-28 17:31:00 +01:00
Thomas Bruederli	01781c221e	Refresh oauth access token in 'refresh' plugin hook (#8224)	2021-12-28 17:23:56 +01:00
Thomas Bruederli	372cb0c5c7	No oauth auto-redirect on imap login failures (#8370)	2021-12-28 17:23:50 +01:00
Aleksander Machniak	3539260470	Fix some more PHP8 warnings (#8363)	2021-12-17 19:06:52 +01:00
Aleksander Machniak	40d9228b9d	Fix in_array_nocase() regression	2021-12-17 18:58:46 +01:00
Aleksander Machniak	918730b46f	Fix some PHP8 compatibility issues (#8363)	2021-12-17 18:53:48 +01:00
Aleksander Machniak	4463865b12	Fix handling of unicode/special characters in custom From input (#8357)	2021-12-12 18:14:43 +01:00
Thomas Bruederli	09d6abd38f	Pass 'id_token' to 'oauth_login' plugin hook (#8214) ... ... and unset it afterwards	2021-12-02 22:43:53 +01:00
Thomas Bruederli	d2f24f20a9	Fix expiration of short-lived oauth tokens (#8147) ... Just add a small margin of 10s to consider the transfer and processing time between oauth server and roundcube.	2021-12-02 22:43:46 +01:00
Thomas Bruederli	fc0910cef5	Fix relative path to assets if /index.php/foo/bar url is used (#8144)	2021-12-02 22:43:38 +01:00
Thomas Bruederli	4851ab3dd9	Bump version to 1.5.1	2021-11-12 22:21:09 +01:00
Aleksander Machniak	48afc9a873	Fix an infinite loop when parsing environment variables with float/integer values (#8293)	2021-11-06 15:09:20 +01:00
Aleksander Machniak	8b89f7aada	Fix PHP8 warnings (#8286)	2021-11-06 09:13:47 +01:00